Narcissus/shredos.x86_64
2
0
Fork 1
mirror of https://github.com/PartialVolume/shredos.x86_64.git synced 2026-02-21 01:52:11 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
297613f1c7e28efc389665bfb70d147f2cdcffa1
shredos.x86_64/package/ruby
History
Peter Korsgaard 646ae5a0b1 ruby: security bump to version 2.4.5 
Fixes the following security issues:

- CVE-2018-16396: Tainted flags are not propagated in Array#pack and
  String#unpack with some directives
https://www.ruby-lang.org/en/news/2018/10/17/not-propagated-taint-flag-in-some-formats-of-pack-cve-2018-16396/

- CVE-2018-16395: OpenSSL::X509::Name equality check does not work correctly
https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395/

Update hash of LEGAL as it had a few (wayback machine) URLs added/changed.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2018-10-30 21:05:19 +01:00
..
Config.in
ruby.hash
ruby.mk